Skip to content

Commit

Permalink
Content Security Policy E2E testing with Puppeteer & Chrome
Browse files Browse the repository at this point in the history
  • Loading branch information
vojtechszocs committed Jan 9, 2025
1 parent e4649ad commit aa52aeb
Show file tree
Hide file tree
Showing 12 changed files with 601 additions and 30 deletions.
1 change: 1 addition & 0 deletions .gitignore
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@ cypress-a11y-report.json
/gopath
/Godeps/_workspace/src/github.com/openshift/console
/frontend/.cache-loader
/frontend/.puppeteer
/frontend/.webpack-cycles
/frontend/__coverage__
/frontend/__chrome_browser__
Expand Down
1 change: 1 addition & 0 deletions frontend/.eslintignore
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
.puppeteer
.yarn
__coverage__
**/node_modules
Expand Down
10 changes: 5 additions & 5 deletions frontend/integration-tests/test-cypress.sh
Original file line number Diff line number Diff line change
Expand Up @@ -7,17 +7,17 @@ SCREENSHOTS_DIR=gui_test_screenshots
# https://ci-operator-configresolver-ui-ci.apps.ci.l2s4.p1.openshiftapps.com/help#env
OPENSHIFT_CI=${OPENSHIFT_CI:=false}

if [ "$(basename "$(pwd)")" != "frontend" ]; then
echo "This script must be run from the frontend folder"
exit 1
fi

# Disable color codes in Cypress since they do not render well CI test logs.
# https://docs.cypress.io/guides/guides/continuous-integration.html#Colors
if [ "$OPENSHIFT_CI" = true ]; then
export NO_COLOR=1
fi

if [ "$(basename "$(pwd)")" != "frontend" ]; then
echo "This script must be run from the frontend folder"
exit 1
fi

if [ ! -d node_modules ]; then
yarn install
fi
Expand Down
2 changes: 2 additions & 0 deletions frontend/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -53,6 +53,7 @@
"test-cypress-topology": "cd packages/topology/integration-tests && yarn run test-cypress",
"test-cypress-topology-headless": "cd packages/topology/integration-tests && yarn run test-cypress-headless",
"test-cypress-topology-nightly": "cd packages/topology/integration-tests && yarn run test-cypress-headless-all",
"test-puppeteer-csp": "yarn ts-node ./test-puppeteer-csp.ts",
"cypress-merge": "mochawesome-merge ./gui_test_screenshots/cypress_report*.json > ./gui_test_screenshots/cypress.json",
"cypress-generate": "marge -o ./gui_test_screenshots/ -f cypress-report -t 'OpenShift Console Cypress Test Results' -p 'OpenShift Cypress Test Results' --showPassed false --assetsDir ./gui_test_screenshots/cypress/assets ./gui_test_screenshots/cypress.json",
"cypress-a11y-report": "echo '\nA11y Test Results:' && mv packages/integration-tests-cypress/cypress-a11y-report.json ./gui_test_screenshots/ && node -e \"console.table(JSON.parse(require('fs').readFileSync(process.argv[1])));\" ./gui_test_screenshots/cypress-a11y-report.json",
Expand Down Expand Up @@ -306,6 +307,7 @@
"monaco-editor": "^0.28.1",
"monaco-editor-webpack-plugin": "^4.2.0",
"prettier": "2.0.5",
"puppeteer-core": "^23.9.0",
"react-refresh": "^0.10.0",
"read-pkg": "5.x",
"redux-mock-store": "^1.5.3",
Expand Down
148 changes: 148 additions & 0 deletions frontend/test-puppeteer-csp.ts
Original file line number Diff line number Diff line change
@@ -0,0 +1,148 @@
/* eslint-env node */
/* eslint-disable no-console */

import * as fs from 'fs';
import * as path from 'path';
import {
Browser as BrowserType,
detectBrowserPlatform,
getInstalledBrowsers,
install,
resolveBuildId,
} from '@puppeteer/browsers';
import { Browser, Page, launch } from 'puppeteer-core';

// Use 'Chrome for Testing' build of the Chrome web browser.
// https://googlechromelabs.github.io/chrome-for-testing/
const testBrowser = BrowserType.CHROME;
const testBrowserTag = 'stable';

// The 'NO_SANDBOX' env. variable can be used to run Chrome under the root user.
// https://chromium.googlesource.com/chromium/src/+/HEAD/docs/design/sandbox.md
const noSandbox = process.env.NO_SANDBOX === 'true';

const baseDir = path.resolve(__dirname, '.puppeteer');
const cacheDir = path.resolve(baseDir, 'cache');
const userDataDir = path.resolve(baseDir, 'user-data');

const findInstalledBrowser = async () => {
const allBrowsers = await getInstalledBrowsers({ cacheDir });
return allBrowsers.find((b) => b.browser === testBrowser);
};

const initBrowserInstance = async () => {
let browser = await findInstalledBrowser();

if (!browser) {
console.info(`Browser ${testBrowser} not found, installing...`);

browser = await install({
browser: testBrowser,
buildId: await resolveBuildId(testBrowser, detectBrowserPlatform(), testBrowserTag),
cacheDir,
});
}

console.info(
`Using browser ${browser.browser} on ${browser.platform} with build ID ${browser.buildId}`,
);

fs.rmSync(userDataDir, { recursive: true, force: true });

return launch({
headless: true,
browser: testBrowser,
executablePath: browser.executablePath,
userDataDir,
args: noSandbox ? ['--no-sandbox'] : [],
});
};

const testPage = async (
browser: Browser,
pageURL: string,
cspReportURL: string,
pageLoadCallback: (page: Page) => Promise<void>,
errorCallback: VoidFunction,
) => {
const page = await browser.newPage();

// Create a Chrome DevTools Protocol session for the page.
const cdpSession = await page.createCDPSession();

// This will trigger Fetch.requestPaused events for the matching requests.
await cdpSession.send('Fetch.enable', {
patterns: [{ resourceType: 'Document' }, { resourceType: 'CSPViolationReport' }],
});

// Handle network requests that get paused through Fetch.enable command.
cdpSession.on('Fetch.requestPaused', ({ resourceType, request, requestId }) => {
if (resourceType === 'Document' && request.url === pageURL) {
const headers = Object.entries(request.headers).map(([name, value]) => ({ name, value }));

headers.push({ name: 'Test-CSP-Reporting-Endpoint', value: cspReportURL });
cdpSession.send('Fetch.continueRequest', { requestId, headers });
}

if (resourceType === 'CSPViolationReport' && request.url === cspReportURL) {
console.error('CSP violation detected', request.postData);
errorCallback();

cdpSession.send('Fetch.fulfillRequest', { requestId, responseCode: 200 });
}
});

console.info(`Loading page ${pageURL}`);

const httpResponse = await page.goto(pageURL);

if (httpResponse.ok()) {
try {
await pageLoadCallback(page);
} catch (e) {
console.error(e);
errorCallback();
}
} else {
console.error(`Non-OK response: status ${httpResponse.status()} ${httpResponse.statusText()}`);
errorCallback();
}

await cdpSession.detach();
await page.close();
};

const waitForNetworkIdle = async (page: Page) => {
await page.waitForNetworkIdle({ idleTime: 2000 });
};

(async () => {
let errorsDetected = false;

const cspReportURL = 'http://localhost:7777/';
const browser = await initBrowserInstance();

const errorCallback = () => {
errorsDetected = true;
};

await testPage(
browser,
'http://localhost:9000/dashboards',
cspReportURL,
waitForNetworkIdle,
errorCallback,
);

await browser.close();

if (errorsDetected) {
process.exit(1);
} else {
console.info('No errors detected');
process.exit(0);
}
})().catch((e) => {
console.error(e);
process.exit(1);
});
Loading

0 comments on commit aa52aeb

Please sign in to comment.